﻿using System;
using System.Collections.Generic;
using System.Linq;
using System.Web;
using System.Web.Security;
using System.Web.SessionState;

namespace Agents
{
    public class Global : System.Web.HttpApplication
    {

        void Application_Start(object sender, EventArgs e)
        {
            // Code that runs on application startup

        }

        void Application_End(object sender, EventArgs e)
        {
            //  Code that runs on application shutdown

        }

        void Application_Error(object sender, EventArgs e)
        {
            // Code that runs when an unhandled error occurs

        }

        void Session_Start(object sender, EventArgs e)
        {
            // Code that runs when a new session is started

        }

        void Session_End(object sender, EventArgs e)
        {
            // Code that runs when a session ends. 
            // Note: The Session_End event is raised only when the sessionstate mode
            // is set to InProc in the Web.config file. If session mode is set to StateServer 
            // or SQLServer, the event is not raised.

        }

        /// <summary>
        ///  Called at the beginning of every request. 
        ///  This method will check to make sure that we have a session 
        ///  if the ticket is valid, otherwise it logs the user out.
        /// </summary>
        /// <param name="sender"></param>
        /// <param name="e"></param>
        protected void Application_PreRequestHandlerExecute(object sender, EventArgs e)
        {
            // Allow requests in these pages, without users
            if ((Request.Url.LocalPath == "/Agents/Login.aspx") ||
                (Request.Url.LocalPath == "/Agents/Account/PasswordRecovery.aspx") ||
                (Request.Url.LocalPath == "/Agents/Errors/Error.aspx") ||
                (!Request.Url.LocalPath.Contains("aspx")))
            {
                return;
            }

            // On any other page, redirect to login page when there is no user
            if (String.IsNullOrEmpty(User.Identity.Name))
            {
                FormsAuthentication.SignOut();
                Response.Redirect(FormsAuthentication.LoginUrl, true);
            }
        }
    }
}
